13 matches found
CVE-2025-7060
A vulnerability was found in Monitorr up to 1.7.6m. It has been classified as problematic. This affects an unknown part of the file assets/config/installation/mkdbajax.php of the component Installer. The manipulation of the argument datadir leads to improper input validation. It is possible to...
Monitorr 输入验证错误漏洞
Monitorr is a web front-end for Monitorr open source. It is used to display the status of any web application or service in real time. An input validation error vulnerability exists in Monitorr 1.7.6m and earlier versions, which stems from improper input validation due to incorrect manipulation o...
PT-2025-27946 · Monitorr · Monitorr
Name of the Vulnerable Software and Affected Versions: Monitorr versions up to 1.7.6m Description: A vulnerability was found in Monitorr, affecting an unknown part of the file assets/config/ installation/mkdbajax.php of the component Installer. The manipulation of the datadir argument leads to...
Out-of-bounds
A vulnerability was found in Monitorr 1.7.6m. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /assets/php/upload.php of the component Services Configuration. The manipulation of the argument fileToUpload leads to unrestricted upload. The...
Monitorr 1.7.6m / 1.7.7d Remote Code Execution Exploit
This Metasploit module exploits an arbitrary file upload vulnerability and achieves remote code execution in the Monitorr application. Using a specially crafted request, custom PHP code can be uploaded and injected through endpoint upload.php because of missing input validation. Any user privileg...
Monitorr 1.7.6m Bypass / Information Disclosure / Shell Upload Exploit
!/usr/bin/env ruby Exploit Title: Monitorr exploit toolkit Google Dorks: inurl:/assets/config/installation/register.php?action=register Author: noraj Alexandre ZANNI for SEC-IT http://secit.fr Author website: https://pwn.by/noraj/ Exploit source: https://github.com/sec-it/monitorr-exploit-toolkit...
jonfinley Monitorr authorization bypass vulnerability
jonfinley Monitorr is a jonfinley open source application. Used for webfront will display the status of any Web application or service in real time. monitorr version 1.7.6m has an authorization bypass vulnerability, which can be exploited by attackers to create valid credentials...
Montiorr 1.7.6m - File Upload to XSS Vulnerability
Exploit Title: Montiorr 1.7.6m - File Upload to XSS Exploit Author: Ahmad Shakla Software Link: https://github.com/Monitorr/Monitorr Tested on: Kali GNU/Linux 2020.2 Detailed Bug Description : https://arabcyberclub.blogspot.com/2021/04/monitor-176m-file-upload-to-xss.html An attacker can preform ...
jonfinley Monitorr 安全漏洞
jonfinley Monitorr is a jonfinley open source application. Used for webfront will display the status of any Web application or service in real time. monitorr version 1.7.6m has an authorization bypass vulnerability, which can be exploited by attackers to create valid credentials...
PT-2021-11587 · Monitorr · Monitorr
Name of the Vulnerable Software and Affected Versions: Monitorr version 1.7.6m Description: The issue allows an unauthorized person to execute arbitrary code on the server-side via an insecure file upload in the upload.php file. This enables remote code execution, posing a significant risk...
Monitorr 1.7.6m Remote Code Execution
!/usr/bin/python -- coding: UTF-8 -- Exploit Title: Monitorr 1.7.6m - Remote Code Execution Unauthenticated Date: September 12, 2020 Exploit Author: Lyhin's Lab Detailed Bug Description:...
Monitorr 1.7.6m Authorization Bypass
!/usr/bin/python -- coding: UTF-8 -- Exploit Title: Monitorr 1.7.6m - Authorization Bypass Date: September 12, 2020 Exploit Author: Lyhin's Lab Detailed Bug Description:...
Monitorr 1.7.6m - Authorization Bypass
!/usr/bin/python -- coding: UTF-8 -- Exploit Title: Monitorr 1.7.6m - Authorization Bypass Date: September 12, 2020 Exploit Author: Lyhin's Lab Detailed Bug Description:...